CVE-2019-19097: ABB eSOMS: SSL medium strength Cipher Suites
First published: Thu Apr 02 2020(Updated: )
ABB eSOMS versions 4.0 to 6.0.3 accept connections using medium strength ciphers. If a connection is enabled using such a cipher, an attacker might be able to eavesdrop and/or intercept the connection.
Credit: cybersecurity@ch.abb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hitachienergy Esoms | >=4.0<=6.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this ABB eSOMS vulnerability?
The vulnerability ID for this ABB eSOMS vulnerability is CVE-2019-19097.
What is the severity of CVE-2019-19097?
The severity of CVE-2019-19097 is high with a severity value of 7.5.
Which versions of ABB eSOMS are affected by CVE-2019-19097?
Versions 4.0 to 6.0.3 of ABB eSOMS are affected by CVE-2019-19097.
What is the impact of CVE-2019-19097?
If a connection is enabled using medium strength ciphers, an attacker might be able to eavesdrop and/or intercept the connection.
How can I fix CVE-2019-19097?
To fix CVE-2019-19097, it is recommended to update ABB eSOMS to a version that does not accept connections using medium strength ciphers.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/title
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/hitachienergy
- canonical/hitachienergy esoms
- version/hitachienergy esoms/4.0
- version/hitachienergy esoms/6.0.3